This scope of work document is targeted to allow the Supplier to provide a quote for a five year services proposal that is focused in the area of support for NERC CIP. The services described below will be quoted for the application to the cyber devices that exist in NextEra Power Plants that are subject to the NERC CIP Version 6 regulations. The Supplier will provide their rates for the execution of the services work described below and will provide a range of qualification levels that would be needed to execute each of the tasks described below as part of the Supplier response to the NextEra RFP. (11 Tasks)
TASK 1: PROJECT MANAGEMENT SUPPORT AND ADMINISTRATION
The Supplier will provide project management services for …show more content…
Integrate schedules provided by the OEM project teams, as led by the appropriate NextEra PGD I&C Fleet Team Project Engineer; this includes the schedule from the DCS OEM’s.
2. Integrate schedules provided by the Physical Security project team, as led by the appropriate FPL Corporate Security (CS) Project Lead. This includes schedules from the contractor selected to implement the Physical Security Perimeter (PSP) installation, configuration and testing.
3. Integrate schedules provided by the Information Management (IM) project team, as led by the appropriate NextEra IM Project Manager. This includes schedules from IM and the cable installation vendor.
4. Integrate security upgrade project activities with the site outage schedule as provided by the NextEra PGD Central Maintenance team.
5. Review schedule with NextEra Project Director on a weekly basis, identifying critical path progress and any issues with tasks that are becoming or are late.
6. Work with NextEra Project Director and Project teams to develop and implement plans for remediation of any late tasks that impact overall schedule critical path.
7. Coordinate Requests for Information (RFI) between the different NextEra business …show more content…
• Copies of relevant configuration, network and system topology documentation.
• Access to relevant internal and external systems as needed.
TASK 2: BES CYBER ASSET, BES CYBER SYSTEM, SECURE ARCHITECTURE DESIGN (CYBER)
& PHYSICAL SECURITY DRAWING
The Supplier will develop the NERC CIP project BCA List based upon the NextEra NERC CIPFPL CIP-002-6 procedures defining the NextEra BES Assets, the proposed Electronic Security Perimeter (ESP) design, the IM Corporate Controls Network design and the OEM system designs.
Developing the BCA List may include the following activities (as required):
1. Finalize the inventory of cyber assets associated with the NERC CIP Bright line and other Criteria
2. Review vendor supplied documentation
3. Conduct a final system review and walk through with qualified client representative
4. Create Engineering Analysis document, including NERC CIP low impact BES Cyber Systems
NextEra will provide a template for the BCA List in Excel format. The BCA List will contain information, including or similar to:
1. BES Cyber Asset Host Name
2. BES Cyber Asset Description
3. BES Cyber Asset Functional